Legislation and Market Forces: PKI Drivers for the U. S. Mortgage Industry November 27, 2006 R. J. Schlecht Director, Industry Technology – Security &

Slides:



Advertisements
Similar presentations
The NNAs Electronic Notary Seal Program Creating and managing notarial acts electronically in real-time Richard J. Hansberger, Director of eNotarization.
Advertisements

EDUCAUSE 2001, Indianapolis IN Securing e-Government: Implementing the Federal PKI David Temoshok Federal PKI Policy Manager GSA Office of Governmentwide.
MBA's Legal Issues in Mortgage Technology Conference November 30 – December 2, 2005 MERS Overview Enabling eCommerce for the Mortgage Industry December.
Policy interoperability in electronic signatures Andreas Mitrakas EESSI International event, Rome, 7 April 2003.
The Federation for Identity and Cross-Credentialing Systems (FiXs) FiXs ® - Federated and Secure Identity Management in Operation Implementing.
The U.S. Federal PKI Richard Guida, P.E. Chair, Federal PKI Steering Committee Chief Information Officers Council
The NNA’s Electronic Notary Seal Program Creating and managing notarial acts electronically in real-time Ozie H. Stallworth, Government Affairs Manager.
UNCITRAL Colloquium on Electronic Commerce The Warehouse at Camden Yards Baltimore, MD February 14-16, 2011 Electronic Transferable.
S.1 Using a Global Validation Service to Unite Communities Jon Shamah EMEA Head of Sales, BBS eSecurity.
August 2004 Providing Industry-wide Security and Identity Management Solutions.
Cross Sector Digital Identity Initiative March 12, 2014 Hearing on the National Strategy for Trusted Identities in Cyberspace (NSTIC) Cross Sector Digital.
Bill Maaske CIO AZ Secretary of State
Controller of Certifying Authorities Public Key Infrastructure for Digital Signatures under the IT Act, 2000 : Framework & status Mrs Debjani Nag Deputy.
Digital Signature Technologies & Applications Ed Jensen Fall 2013.
National Smartcard Project Work Package 8 – Security Issues Report.
Legal Issues in Mortgage Technology November 30 – December 2, 2005 Fannie Mae & eMortgages Pam Holland Associate General Counsel Fannie Mae.
Chapter © 2012 Pearson Education, Inc. Publishing as Prentice Hall.
Blueprint for a Mortgage OLAP Network & Financial Warehouse by Evince Technologies, Inc. by Evince Technologies, Inc.
Managing Risk in Cloud Computing Contracts Henry Ward and Todd Taylor April 30, 2015.
Chapter 19 E-Contracts and E-Signatures Copyright © 2009 South-Western Legal Studies in Business, a part of South-Western Cengage Learning. Jentz Miller.
Compliance and Regulation for Mobile Solutions Amanda J. Smith Messick & Lauer, P.C. May 16, 2013.
MISMO Trimester Meeting June 4 - 7, 2012 Santa Ana, CA MISMO for Newbies June 2012 Trimester Education Track Harry Gardner President, SigniaDocs June 4,
1-1 Copyright © 2016 McGraw-Hill Education. All rights reserved. No reproduction or distribution without the prior written consent of McGraw-Hill Education.
BITS Proprietary and Confidential © BITS Security and Technology Risks: Risk Mitigation Activities of US Financial Institutions John Carlson Senior.
Add Your Company Logo Here Removing Risk from the eMortgage lottery 1 Enabling eMortgages via a Captive Settlement Services Venture Paul Wills Director.
Introduction to Secure Messaging The Open Group Messaging Forum April 30, 2003.
Chapter 01 The Role of the Public Accountant in the American Economy McGraw-Hill/IrwinCopyright © 2014 by The McGraw-Hill Companies, Inc. All rights reserved.
1 EAP and EAI Alignment: FiXs Pilot Project December 14, 2005 David Temoshok Director, Identity Policy and Management GSA Office of Governmentwide Policy.
The Evolving U.S. Federal PKI Richard Guida Chair, Federal PKI Steering Committee Federal Chief Information Officers Council
U.S. General Services Administration Federal Technology Service November 9, 1999 Judith Spencer Director, Center for Governmentwide Security Office of.
ELECTRONIC CONVEYANCING WORKSHOPS 2009 Simon Libbis Executive Director Ann Kinnear Operations Manager.
LEGAL CHALLENGES & STRATEGIES IN E-PROCUREMENT IN CONSTRUCTION
HEPKI-PAG Policy Activities Group David L. Wasley University of California.
The Project Team Electronic Recording Timeline  August 1998  Governor’s Commission on use of Electronic Signatures  September 1999  Racine County.
FDA Public Meeting on Electronic Records and Signatures June 11, 2004 Presentation of the Industry Coalition on 21CFR Part 11 Alan Goldhammer, PhD Chair.
Higher Education PKI Summit Meeting August 8, 2001 The ABA PAG Rodney J. Petersen, J.D. Director, Policy and Planning Office of Information Technology.
PKI and the U.S. Federal E- Authentication Architecture Peter Alterman, Ph.D. Assistant CIO for e-Authentication National Institutes of Health Internet2.
The MERS ® eRegistry: Paving the way for eNotes and eMortgages Dan McLaughlin, EVP, Product Division Presentation for: America’s Community Bankers.
Paperless Government and the Law John D. Gregory Ministry of the Attorney General June 5, 2009.
Electronic Recording - “A View from 30,000 feet” Presented to WLIA March 14, 2002.
“Trust me …” Policy and Practices in PKI David L. Wasley Fall 2006 PKI Workshop.
Identity Federations and the U.S. E-Authentication Architecture Peter Alterman, Ph.D. Assistant CIO, E-Authentication National Institutes of Health.
1 Federal Identity Management Initiatives Federal Identity Management Initatives David Temoshok Director, Identity Policy and Management GSA Office of.
GSE UPDATE AND MERS eREGISTRY MBA ’ s Legal Issues In Mortgage Technology Conference San Diego, California December 2, 2005 James A. Newell Associate General.
HIT Policy Committee NHIN Workgroup HIE Trust Framework: HIE Trust Framework: Essential Components for Trust April 21, 2010 David Lansky, Chair Farzad.
FSTC Bank Technology and Operations Committee
Transforming Government Federal e-Authentication Initiative David Temoshok Director, Identity Policy and Management GSA Office of Governmentwide Policy.
PKI Policy Determination Process Input from PKI Decision Process PKI Policy Determination Process Application(s) Workflows Players.
Electronic Security and PKI Richard Guida Chair, Federal PKI Steering Committee Chief Information Officers Council
Chapter © 2012 Pearson Education, Inc. Publishing as Prentice Hall.
Copyright © 2012, Big I Advantage®, Inc., and Swiss Re Corporate Solutions. All rights reserved. (Ed. 08/12 -1) E&O RISK MANAGEMENT: MEETING THE CHALLENGE.
MERSCORP Holdings, Inc. update for April 20, 2016.
Wildman Harrold | 225 West Wacker Drive | Chicago, IL | (312) | wildman.com © 2010 Wildman, Harrold, Allen & Dixon LLP. Building an Online.
Property Records Industry Association About PRIA (and PREP) Florida Electronic Recording Advisory Committee August 20, 2007 Tallahassee, FL Carol Foglesong,
The technology behind the USPS EPM. AND COMPLIANCE March 25, 2004 Adam Hoffman.
The Federal E-Authentication Initiative David Temoshok Director, Identity Policy GSA Office of Governmentwide Policy February 12, 2004 The E-Authentication.
E-Authentication Guidance Jeanette Thornton, Office of Management and Budget “Getting to Green with E-Authentication” February 3, 2004 Executive Session.
eNotarization Are We There Yet?
Legality of Electronic Signatures
E&O Risk Management: Meeting the Challenge of Change
SWIM Common PKI and policies & procedures for establishing a Trust Framework                           Kick-off meeting Patrick MANA Project lead 29 November.
U.S. Federal e-Authentication Initiative
INFORMATION SYSTEMS SECURITY and CONTROL
John Carlson Senior Director, BITS
HIMSS National Conference New Orleans Convention Center
Digital Documents in the US E-Signature, E-Notarization, Remote Notarization
WEQ-012 PKI Overview March 19, 2019
Reiniger LLC.
Purpose of Notarizing Documents
Reiniger LLC.
Presentation transcript:

Legislation and Market Forces: PKI Drivers for the U. S. Mortgage Industry November 27, 2006 R. J. Schlecht Director, Industry Technology – Security & Compliance

Secure Identity Services Accreditation Corporation SISAC Develops baseline standards for auditing and accreditation of certificate/credential issuers »SISAC does not issue credentials, rather accredits Service Providers, e.g., VeriSign, GeoTrust, Mortgage entities, etc. Technical, Business and Legal requirements B2B model for authentication Wholly-owned subsidiary of MBA

SISAC - Requirements Standards developed by SISAC Advisory Group »Fannie Mae, Freddie Mac and mortgage participants »Advisory group is open to other entities »Standards drafted by Relying Parties Aligned with PKI best practices »Federal Bridge (FBCA), OMB 0404, NIST, etc. Business contract infrastructure »RA, Subscriber, Relying Party agreements »Defined obligations for all participants Liability requirements »Credential Issuer Liable for Errors & Omission (E&O) Not fraud or transaction »Basic ($1M), Medium ($5M), High ($10M)

eDoc Prep Service Ordering: Credit Flood Hazard Title MI MERS® eRegistry (National eNote Registry) eVault eDocuments eNote Data, Messaging & Control eOrigination & Underwriting External Docs eRecording Legal eDocs (Land records, tax liens, other docs/affidavits ) eClosing BuyerSeller eNotarization eSignatures eMortgage Process Flow Secondary Investor, Aggregator eVault Servicing

SISAC – Flexibility Three levels of Assurance »Basic, Medium & High Accreditation models »Full and outsourced providers »Independent or corporate providers Types of Subscriber Certificates »User certificates Individual or Organizational »Device certificates Ability for Replying Parties to add requirements

Legislation Uniform Electronic Transactions Act (UETA) Electronic Signatures in Global and National Commerce Act (E-SIGN) Gramm-Leach-Bliley Act Regulations »Federal Financial Institution Examination Council (FFIEC) »Federal Trade Commission (FTC) U. S. States »California Senate Bill 1386 (Security Breach) »Over 30 other States

MERS – National eNote Registry Designation of authoritative Promissory eNote Single source for Mortgage Industry of electronic Note »Notes are traded between primary, warehouse, secondary. Launch production »April 26, 2004 MERS Requirements »Tamper-evidence seal on envelope SISAC Organizational Medium Assurance Cert »Individual Identity on specific Transactions SISAC Individual Medium Assurance Cert

eNote Registry

National Notary Association (NNA) eNotarizaiton of electronic records State and County Recorders/Requirements Strong authentication, with validation and revocation Document integrity Potential fraudulent exploitation of notaries Non-proprietary model

Lessons Learned Business infrastructure and liability Relying parties are interested in complying with legislative and business requirements; not credential services Legislation legalized electronic signatures and documents, and security controls for protecting personal information Relying parties bear the risk and therefore should have a critical role in defining policy requirements Ability to leverage existing CPs/CPSs and audit practices Emergence of early industry adopters; eRegistry and eNotarization services Flexible model without compromise of standards

Addressing the PKI Adoption Issues Poor or missing support for PKI in software applications; High adoption costs; Poor understanding of PKI among senior managers and end-users; Too much focus on technology and not enough on business needs; and, Interoperability problems.

Contact R. J. Schlecht Director, Industry Technology Security & Compliance Mortgage Bankers Association Washington, DC

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2024 SlidePlayer.com Inc. All rights reserved.